Техническая информация
- %WINDIR%\syswow64\rundll32.exe
- firefox.exe
- %TEMP%\_mei19202\microsoft.vc90.crt.manifest
- %TEMP%\_mei19202\msvcr90.dll
- %TEMP%\_mei19202\msvcp90.dll
- %TEMP%\_mei19202\msvcm90.dll
- %TEMP%\_mei19202\python27.dll
- %TEMP%\_mei19202\unicodedata.pyd
- %TEMP%\_mei19202\bz2.pyd
- %TEMP%\_mei19202\_hashlib.pyd
- %TEMP%\_mei19202\select.pyd
- %TEMP%\_mei19202\_ctypes.pyd
- %TEMP%\_mei19202\allpass.exe.manifest
- http://18#.##.57.24:10240/updates via 18#.#6.57.24
- http://18#.##.57.24:10240/VDPs via 18#.#6.57.24
- http://18#.##.57.24:10240/y3z6 via 18#.#6.57.24
- http://18#.##.57.24:10240/nLl6 via 18#.#6.57.24
- '%WINDIR%\syswow64\rundll32.exe' ' (со скрытым окном)
- '%WINDIR%\syswow64\rundll32.exe'